HummingBad affects devices by implanting a persistant rootkit. This malware runs its campaign along with genuine campaigns. These details were revealed in a report by security specialist company Check Point. The report, which is 24 page long also said that any data inside the affected smartphones are also at risk. In fact, if the malware acquires root access of your device, then it gains full access.